On Fri, Jan 18, 2008 at 06:39:01PM +0200, Ahmed Kamal wrote: > This really is not possible. Everything has to be on the customer's side. I > can't explain *why*, but please assume so. > Do other Linux based "boxes" (think google enterprise search, tivo, vmware > vmtn > images ... etc) employ any techniques to protect their stuff from preying eyes > ?
Sometimes yes, sometimes no. Mostly it's just internal passwords you don't know. Usually fairly trivial to boot off a CD or remove the drive an mount it elsewhere. I suppose others could "obfuscate" by modifying filesystems or whatever... I went over this at a previous employer though. There's really no good way to "automatically" encrypt/decrypt a disk without the decryption key being available to whoever your intruder is as well. :) Can you obfuscate your code? I believe we were using Zend to "encrypt" our PHP data on the server. Obviously it could still be decrypted (the web server had to be able to read it), but your casual thief likely will have a tougher time doing so. Ray _______________________________________________ rhelv5-list mailing list rhelv5-list@redhat.com https://www.redhat.com/mailman/listinfo/rhelv5-list
